Cyber Security Incident Handler

Clearance Level
Top Secret/SCI
Category
Information Security
Location
San Antonio, Texas
Onsite Workplace
Key Skills For Success

Cybersecurity

Incident Handling

Incident Response

REQ#: RQ161612
Requisition Type: Regular
Your Impact

Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.

Job Description

Experience providing and configuring Incident Response Infrastructure Support (IRIS), continuous network monitoring, intrusion detection and incident response/reporting services for systems. Documents, tracks, and reports incidents from initial detection through resolution. Experienced collecting and analyzing network intrusion data from many sources to enable mitigation of network incidents. Strong analytical skills used to perform incident triage to determine scope, urgency, and potential operational impact of vulnerability related incidents and making recommendations supporting rapid remediation or mitigation. Create custom signatures or correlation rules to detect/prevent incidents and serve as SME and liaison to external incident response personnel. Provide forensics collections, intrusion correlation tracking, threat analysis, and direct system remediation support. Develops incident handling response guidance, SOPs and workflows.

Minimum 5 years' experience as Incident Handler, BS degree desired.

One IAT Level III certification (i.e. CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP) and one CSSP-Incident Responder certification (i.e. CEH, CFR, CCNA Cyber Ops, CCNA-Security, CHFI, CySA+, GCFA, GCIH, SCYBER, PenTest+).

Desired skills:

  • Familiarity with ICD 502 - Integrated Defense of the Intelligence Community Information Environment, and ICD 503 - IC Information Technology Systems Security Risk Management (https://www.dni.gov/index.php/what-we-do/ic-related-menus/ic-related-links/intelligence-community-directives )

  • Ability to handle unstructured customer conversations and generate written technical reports and materials, addressing technical capabilities and policy changes.

  • Ability to conduct research combined with threat hunting inclinations on relevant security topics and threats and develop response strategy and documentation to identify existing threats and vulnerabilities within the environment.

GDIT IS YOUR PLACE:

  • 401K with company match

  • Comprehensive health and wellness packages

  • Internal mobility team dedicated to helping you own your career

  • Professional growth opportunities including paid education and certifications

  • Cutting-edge technology you can learn from

  • Rest and recharge with paid vacation and holidays

#GDITPriority

Work Requirements
Years of Experience

5 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

Less than 10%

Citizenship

U.S. Citizenship Required

About Our Work

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.